What is claimed is: 



1. A method for use in reauthent ication of a communication 
session involving the exchange of information between a terminal 
(21) and a server (24) via an authentication network (28), the 

5 communication session having already been authenticated by the 

terminal (21) and a first authentication server (23a) of the 
authentication network (28) , the method characterized by: 

a step (11) in which the first authentication server 
(23a) and other authentication servers (23b) are each assigned 
10 a respective unique realm name; and 

a step (13) in which during authentication between the 
terminal and the first authentication server (23a) , the first 
authentication server (23a) transmits to the terminal (21) a 
reauthentication identity including the unique realm name 
15 assigned to the first authentication server. 

2. The method of claim 1, further characterized by: 

a step (14) in which to perform a reauthentication the 
terminal (21) transmits a request for reauthentication using 
the reauthentication identity including the unique realm name; 

2 0 and 

a step (15) in which an authentication network element 
(21a 22 23a 23b) receiving the request for reauthentication 
determines from the reauthentication identity included in the 
request the unique realm name indicating the authentication 
25 server (23a) that performed the full authentication. 

3. The method of claim 2, further characterized by: 

a step (15) in which an authentication network element 
(21a 22 23b) forwards the request to the authentication server 
(23a) indicated by the unique realm name included as part of 

3 0 the reauthentication identity; and 
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a step (16 17) in which the terminal (21) and the first 
authentication server (23a) perform reauthent icat ion . 

4. An authentication server (23a 23b) in a cellular 
communication system comprising means for reauthentication of a 

5 communication session between a terminal (21) and a content 

server (25) , the authentication server (23a 23b) characterized 
by: 

means (11) for receiving an assigned unique realm name; 

and 

10 means (13) for transmitting to the terminal (21) a 

reauthentication identity including the unique realm name. 

5. An authentication server as in claim 4, further characterized 
by: 

means (15) for receiving a request for reauthentication 
15 using the reauthentication identity and for determining from 

the reauthentication identity the unique realm name. 

6. An authentication server as in claim 5, further characterized 
by: 

means (16) for forwarding the request to the 
20 authentication server (23a) indicated by the unique realm name 

included as part of the reauthentication identity. 

7. A computer program product comprising: a computer readable 
storage structure embodying computer program code thereon for 
execution by a computer processor in an authentication server 

25 (23a) , with said computer program code characterized in that it 

includes instructions for enabling the means of an apparatus 
according to claim 4 . 

8. A computer program product comprising: a computer readable 
storage structure embodying computer program code thereon for 
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execution by a computer processor in an authentication server 
(23a) , with said computer program code characterized in that it 
includes instructions for enabling the means of an apparatus 
according to claim 5. 

9. A computer program product comprising: a computer readable 
storage structure embodying computer program code thereon for 
execution by a computer processor in an authentication server 
(23a) , with said computer program code characterized in that it 
includes instructions for enabling the means of an apparatus 
according to claim 6. 

10. A system, including a plurality of terminals (21), a 
plurality of authentication servers (23a 23b) , and at least one 
content server (24) , the terminals (21) operative so as to 
request content from the content server (24) after 
authentication and occasional reauthentication with one or 
another of the authentication servers (23a 23b) , the system 
characterized in that at least two of the authentication servers 
(23a 23b) are as in claim 4. 

11. A system, including a plurality of terminals (21), a 
plurality of authentication servers (23a 23b) , and at least one 
content server (24) , the terminals (21) operative so as to 
request content from the content server (24) after 
authentication and occasional reauthentication with one or 
another of the authentication servers (23a 23b) , the system 
characterized in that at least two of the authentication servers 
(23a 23b) are as in claim 5. 

12. A system, including a plurality of terminals (21), a 
plurality of authentication servers (23a 23b) , and at least one 
content server (24) , the terminals (21) operative so as to 
request content from the content server (24) after 
authentication and occasional reauthentication with one or 

-15- 



another of the authentication servers (23a 23b) , the system 
characterized in that at least two of the authentication servers 
(23a 23b) are as in claim 6. 
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